The Best of GRC Thought Leadership

In the context of ISO 27001, the roles and responsibilities of risk owners and asset owners play crucial parts in the risk management process. These two positions have distinct..

The first company to be certified to the 2022 version of ISO/IEC 27001 We are just a little bit excited about our certification body (GCC) confirming that we are the first company..

In today's digital age, information security has become a top priority for organizations around the world. With the increasing number of cyber threats, businesses are looking for..

In today's digital age, information security is of paramount importance for businesses of all sizes. The increasing prevalence of cyber threats and data breaches has made it..

Key takeaways ISO 27002:2022 is an updated version of the international management standard for information security controls, providing detailed guidance on implementing specific..

Key Takeaways The NIST CSF (Cybersecurity Framework) and ISO 27001 are two prominent frameworks that help organizations establish effective cybersecurity controls and manage..

What is ISO 27001? ISO 27001, also known as ISO/IEC 27001, is an internationally recognized standard for information security management systems (ISMS). It provides a systematic..

The latest version, ISO 27001 2022 was released on October 25. It replaces the 2013 version of ISO 27001. Let’s find out what the key changes are and how the latest revision to..

Cybersecurity frameworks are a vital tool for organizations looking to improve their cyber health. A cybersecurity framework provides a set of guidelines and best practices for..

The Information Security policy is an important and mandatory document for ISO 27001 implementation. Several organisations struggle with creating a useful information security..